Facial recognition software is an example of biometric data that can be used for authentication. Similar to finger print and retina scans, this type of technology uses biometric data unique to an individual in hopes of eliminating the typical user name password combination, which are susceptible to hacks (for more information see this additional article: http://www.informationweek.com/security/client/biometrics-demystified-what-you-need-to/231903308 ). Facial recognition technology can also be used to personalize marketing targets. This article discusses recommendations by the Federal Trade Commission concerning personal privacy. Among the recommendations are: (for social networks) 1- Social networks using facial recognition features should provide consumers with clear notice about how the feature works, what data it collects, and how that data will be used. They also should provide consumers with an easy to use choice not to have their biometric data collected and used for facial recognition, and the ability to turn the feature off at any time and have the biometric data previously collected from their photos permanently deleted... And 2- Companies consider the sensitivity of information when developing their facial recognition products and services - for example, digital signs using facial recognition technologies should not be set up in places where children congregate. The FBI is already compiling a facial recognition database and there are many concerns tied with civil liberties, privacy, and identification security.
Analysis:
From a business perspective, retailers, such as retail chains or even casinos, can use facial recognition to prevent losses from shoplifting or scamming; they can use facial recognition to market to certain genders or even emotions readable on consumers' faces. From a security and authentication perspective, it's supposed to use the same logic behind finger print scanners to only allow access to the truly intended user. The problem is, many people have been able to use spoofing to easily bypass this security measure (see this article, using a photograph to bypass a Face Lock mechanism for Android phones: http://www.geek.com/articles/mobile/android-face-lock-feature-spoofed-by-photograph-20111115/).
The problem becomes more apparent when you realize personably-identifiable information has been collected and scanned into the FBI's facial recognition database and; these same photos come from uploaded images through public social networks such as Facebook. It means that anyone can go onto a Facebook page, and use facial recognition software to pick out and identify a face from many, and then use that picture to compromise the person's identity. In my opinion, the FTC guidelines merely raise awareness about the use of facial recognition. I wonder when we will realize that trading convenience for security will render some of today's cutting edge technology harmful and counterproductive as we incur more recovery expenses due to hacking attacks and stolen identities.
Facial recognition software is an example of biometric data that can be used for authentication. Similar to finger print and retina scans, this type of technology uses biometric data unique to an individual in hopes of eliminating the typical user name password combination, which are susceptible to hacks (for more information see this additional article:
http://www.informationweek.com/security/client/biometrics-demystified-what-you-need-to/231903308 ). Facial recognition technology can also be used to personalize marketing targets. This article discusses recommendations by the Federal Trade Commission concerning personal privacy. Among the recommendations are: (for social networks) 1- Social networks using facial recognition features should provide consumers with clear notice about how the feature works, what data it collects, and how that data will be used. They also should provide consumers with an easy to use choice not to have their biometric data collected and used for facial recognition, and the ability to turn the feature off at any time and have the biometric data previously collected from their photos permanently deleted... And 2- Companies consider the sensitivity of information when developing their facial recognition products and services - for example, digital signs using facial recognition technologies should not be set up in places where children congregate. The FBI is already compiling a facial recognition database and there are many concerns tied with civil liberties, privacy, and identification security.
Analysis:
From a business perspective, retailers, such as retail chains or even casinos, can use facial recognition to prevent losses from shoplifting or scamming; they can use facial recognition to market to certain genders or even emotions readable on consumers' faces. From a security and authentication perspective, it's supposed to use the same logic behind finger print scanners to only allow access to the truly intended user. The problem is, many people have been able to use spoofing to easily bypass this security measure (see this article, using a photograph to bypass a Face Lock mechanism for Android phones:
http://www.geek.com/articles/mobile/android-face-lock-feature-spoofed-by-photograph-20111115/).
The problem becomes more apparent when you realize personably-identifiable information has been collected and scanned into the FBI's facial recognition database and; these same photos come from uploaded images through public social networks such as Facebook. It means that anyone can go onto a Facebook page, and use facial recognition software to pick out and identify a face from many, and then use that picture to compromise the person's identity. In my opinion, the FTC guidelines merely raise awareness about the use of facial recognition. I wonder when we will realize that trading convenience for security will render some of today's cutting edge technology harmful and counterproductive as we incur more recovery expenses due to hacking attacks and stolen identities.